Safety check for array of nonces

getgrav · Jan 7, 2016 · eb29d68 · eb29d68
1 parent e0632de
commit eb29d68
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/system/src/Grav/Common/Utils.php b/system/src/Grav/Common/Utils.php
@@ -560,6 +560,11 @@ public static function getNonceOldStyle($action, $plusOneTick = false)
      */
     public static function verifyNonce($nonce, $action)
     {
+        //Safety check for multiple nonces
+        if (is_array($nonce)) {
+            $nonce = array_shift($nonce);
+        }
+
         //Nonce generated 0-12 hours ago
         if ($nonce == self::getNonce($action)) {
             return true;